The Story Behind a Windows Security Patch Recall

← Back to Stories (view on slashdot.org)

The Story Behind a Windows Security Patch Recall

Posted by CowboyNeal on Friday May 4, 2007 @08:32AM from the trial-and-human-error dept.

bheer writes "Raymond Chen's blog has always been popular with Win32 developers and those interested in the odd bits of history that contribute to Windows' quirks. In a recent post, he talks about how an error he committed led to the recall of a Windows security patch."

135 comments

Alrighty then... by packetmon · 2007-05-04 08:37 · Score: 0

The DLL that hosted the shell extension created a worker thread, so it did an extra LoadLibrary on itself so that it wouldn't get unloaded when COM freed it as part of CoUninitialize tear-down. ... and then waiting for the worker thread to respond with a "Okay, I'm all done" event." I usually am a brute and kill -9 things that won't listen. Lesson of the day? When in doubt kill -9 it all.

--
Infiltrated dot Net
Awwww, touching.... by Richard+McBeef · 2007-05-04 08:39 · Score: 0, Flamebait

I didn't realize microsoft developers were real people and might have real feelings. Maybe we should cut them some slack.
1. Re:Awwww, touching.... by misleb · 2007-05-04 08:47 · Score: 2, Funny
  
  Heck why not just go all the way an cut them loose?
  
  --
  "THERE IS NO JUSTICE, THERE IS ONLY ME." -Death
2. Re:Awwww, touching.... by Kingrames · 2007-05-04 09:44 · Score: 1
  
  We should cut them some slack only if they're dangling by a rope over a pit.
  
  And, might I add, the spikes in said pit should be +1, evil-outsider bane.
  
  --
  If you can read this, I forgot to post anonymously.
3. Re:Awwww, touching.... by Inner_Child · 2007-05-04 10:15 · Score: 1, Offtopic
  
  Did the sergeant come over, pin a medal on ya, send ya down the hall and say "You're our boy"?
  
  --
  Today is red jello day - all workers must eat all of their red jello. Failure to comply will result in five demerits.
4. Re:Awwww, touching.... by Anonymous Coward · 2007-05-04 10:16 · Score: 0
  
  Maybe just cut them, period.
5. Re:Awwww, touching.... by Anonymous Coward · 2007-05-04 11:01 · Score: 0
  
  I won't cut them any slack after this gem:
  Welcome Slashdot readers. Since you won't read the existing comments before posting your own, I'll float some of the more significant ones here.
6. Re:Awwww, touching.... by Saikik · 2007-05-04 13:54 · Score: 1
  
  Flamebait?
  
  Oh wait I see it... Maybe we should cut them some slack.
What the... by P2PDaemon · 2007-05-04 08:47 · Score: 2, Insightful

Why are the trolls out in force here? Oh, Microsoft... Nevermind...
1. Re:What the... by Anonymous Coward · 2007-05-04 09:16 · Score: 0
  
  Your post might have been funny if it wasn't among like the first four. In other words, you are the troll.
If this happened at Apple... by Jadware · 2007-05-04 08:53 · Score: 5, Funny

Raymond Chen would be iFired, or at least told to iRTFM.
1. Re:If this happened at Apple... by mobby_6kl · 2007-05-04 09:14 · Score: 1, Funny
  
  That, or he would've been iGiven some iBackdated stock
2. Re:If this happened at Apple... by Anonymous Coward · 2007-05-04 20:49 · Score: 0
  
  told to iRTFM
  Wouldn't that be RTFiM? :)
The Money Quote by SixFactor · 2007-05-04 08:55 · Score: 4, Interesting

You're about to be Slashdotted.
Seriously, it's good to get a glimpse of the interactions in the dev side of MS. It's astonishing that MS even allows this to happen at all. The March 07 Wired had a feature on Channel 9 that humanized the MS organization quite a bit, IMO. It's not just about chair-throwing, marketing hyperbole, and world domination after all... oh wait.

--
Science never settles, never rests.
1. Re:The Money Quote by snowgirl · 2007-05-04 09:03 · Score: 2, Funny
  
  Your sig: Sheep, Sheepdog, or Wolf: Choose.
  
  I choose moof!
  
  --
  WARNING! This girl exceeds the MAXIMUM SAFE standards established by the FDA for BRATTINESS
2. Re:The Money Quote by SixFactor · 2007-05-04 09:18 · Score: 1, Offtopic
  
  That's funny. The origin of my sig, if you didn't know already can be found here. It presents an apt analogy of human reactions to danger (wolves).
  
  --
  Science never settles, never rests.
Fascinating by wbean · 2007-05-04 09:00 · Score: 4, Insightful

This is fascinating. The system for exiting a process is so complicated that a lot of implementations fail. In fact, it's so complicated that even Microsoft can't get it right. Sounds like an unbounded loop to me.
1. Re:Fascinating by Anonymous Coward · 2007-05-04 09:26 · Score: 0
  
  Sounds they tried to solve the Halting problem, and the code suffered from well, the Halting problem.
2. Re:Fascinating by Anonymous Coward · 2007-05-04 09:39 · Score: 2, Insightful
  
  Sounds like an unbounded loop to me.
  That's quite an appropriate analogy. If you RTFA, you would know that the loop in question is designed to be bounded by a guard variable/event, but they had already terminated the thread that sets the guard to the state that allows the loop to terminate.
  
  The root cause of the hang is that most programmers are not really aware of the states involved at process termination, so they assume invalid things about the DLL process termination event -- namely that it's okay to wait for something that may have been locked/entered by a child thread.
  
  p.s. To the sibling AC, I know you were going for funny, but they're not trying to solve the haling problem.
3. Re:Fascinating by Timesprout · 2007-05-04 09:50 · Score: 4, Interesting
  
  Raymond has touched on the complexity of their software before and noted that oftentimes the complexity was not acually a product of the fuctionality but due to fixes, patches and additions to the code over time. To his credit he has in the past admitted that issues similar to this one were introduced because the core problem ie loading faulty shell extensions was not addressed directly for reasons of time/money/too scared to touch it/whatever and the hacks and workarounds only served to pointlessly bloat the complexity of the whole system. It's also worth noting that this complexity creep was not entirely due to MS. They had 10s of millions users with god knows how many applications which the MS dev teams struggled to support with backwards compatability etc. Raymond has admitted in the past that specific checks were put in the OS for certain applications to keep them functioning. Nice if you are a third party developer but just asking for trouble for your OS.
  
  --
  Do not try to read the dupe, thats impossible. Instead, only try to realize the truth
  What truth?
  There is no dupe
4. Re:Fascinating by Quantam · 2007-05-04 15:53 · Score: 2, Interesting
  
  You should read The Old New Thing site (or the book by the same name, which is basically just a cleaned up and edited version of everything on the site). For those not familiar with him, Raymond Chen is THE backward compatibility guy at MS. He and his minions have to find all the badly programmed programs that break when Windows improvements are ready to ship (for examples of just how bad some of these programs are, read the site; little things like walking the stack from a window callback function to find some data value used earlier, etc.), and figure out kludges to make them still work despite improvements to the OS. Not surprisingly, he has a massive amount of knowledge to share about how Windows has become so complex and so warped.
  
  He also is there to give advice on things NOT to do in coding (and yes, he does indeed talk about bad things MS employees have done, although he never refers to exactly where he encountered a particular bad thing he discusses).
  
  --
  You have tried to support your argument with faulty reasoning! Go directly to jail; do not pass Go, do not collect $200!
5. Re:Fascinating by Chops · 2007-05-05 08:19 · Score: 2, Interesting
  It's not just that -- there's a whole little gang of design flaws responsible here, each of them egging the others on like adolescent boys with dangerous tools at their disposal. To all of the people saying, "well, it has to be that way because Microsoft has 5 billion trillion gazillion apps to support and they're not responsible for third party blah blah blah," I say this: No. Shut up. Linux vendors release updates for a body of software that is a massive superset of what Windows Update covers, often with a tiny fraction of the QA manpower, and problems like this are still quite rare. Why? Well, let's take a look at design flaws that caused the vulnerability Chen was solving:
  
  Windows handles OS extensions by loading DLLs into Explorer's address space, instead of introducing a layer of separation and interacting with a separate process (a design which would have allowed graceful handling of arbitrary errors in the extension).
  
  It's apparently easy to accidentally construct code which Explorer believes is a usable shell extension, and likewise impossible to add checks to Explorer such that it will only use, as a shell extension, something which was deliberately intended to be a shell extension. Stop and think about that for a long, long second. That's shockingly shitty design even for Microsoft. Chen blames the application programmers (saying, "lots of people mess up IUnknown::QueryInterface" and linking to a page containing what appears to be an excerpt from the Nag Hammadi scriptures in the original Coptic), instead of realizing that if professional programmers show a consistent pattern of making particular mistakes interacting with an interface, the interface is probably poorly designed.
  
  As you mention, this seems like a design flaw in the implementation of threading, DLL handling, and process exit. The same construct in Linux does not hang -- it waits until the thread terminates, and then exits normally:
  #include <pthread.h> #include <stdio.h> #include <stdlib.h> volatile int stop_now; void stop() { printf("Stopping, sort of.\n"); while(!stop_now); printf("All done.\n"); } void *start(void *arg) { sleep(10); printf("Deciding to stop.\n"); stop_now = 1; } int main(int argc, char **argv) { atexit(stop); stop_now = 0; pthread_t thread; pthread_create(&thread, NULL, start, NULL); exit(0); }
  
  I can feel Chen's pain -- it must have been awful trying to botch around the fallout from the first two stupidities, and then getting screwed by the third. I don't think that lets Microsoft off the hook at all, though. The responsibility for the hacked-together, poorly-planned, teetering heap of an OS that they now have to support (at tremendous cost) lies nowhere but at their own metaphorical feet.
6. Re:Fascinating by justasecond · 2007-05-07 08:35 · Score: 1
  
  Raymond Chen is also a condescending tool. (Check out Verity Stob's recent article for a good laugh at his expense, or this Joel on Software forumn thread.)
7. Re:Fascinating by Quantam · 2007-05-08 01:10 · Score: 1
  
  Dear Gord no. It was bad enough with Linus and RMS. The world does NOT need another person that makes headlines every time he says something.
  
  --
  You have tried to support your argument with faulty reasoning! Go directly to jail; do not pass Go, do not collect $200!
An error he committed? by drinkypoo · 2007-05-04 09:02 · Score: 5, Insightful

he talks about how an error he committed led to the recall of a Windows security patch.

Okay, he made an error. Why the HELL wasn't it caught in QA? Microsoft wants us to believe that the reason that we have to wait for patches is that they are getting some kind of exhaustive QA. This patch and executable were specifically created to avoid problems with invalid shell extensions. Don't you think that given that fact the thing to do would be to test it with some invalid shell extensions?

This is the reason that Windows admins have to be so much more paranoid about patches than the rest of us. A Windows patch is highly likely to be a big pile of crap that causes your system to not work properly. I think we can all remember certain service packs that broke various versions of Windows NT pretty much completely...

If you can't have confidence that security patches will fix more than they break, how can you have sufficient confidence to even install that vendor's products, let alone count on them for mission-critical applications?

--
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
1. Re:An error he committed? by Joe+U · 2007-05-04 09:10 · Score: 0, Troll
  
  I think we can all remember certain service packs that broke various versions of Windows NT pretty much completely...
  
  Actually, I don't. Was it before Windows NT 3.1 beta? Because that's when I started using it.
  
  I do remember service packs that broke verious versions of windows NT that had some software loaded on it that really shouln't have made it out of beta testing.
2. Re:An error he committed? by jddj · 2007-05-04 09:11 · Score: 1
  
  No love for Apple on this one.
  
  Tried to install 10.2.8, 10.3.9, 10.4.9, or virtually any Security Update?
  
  C'mon, admit it: you held your breath, didn't you?
3. Re:An error he committed? by NickFitz · 2007-05-04 09:16 · Score: 5, Informative
  
  As he points out in his response to the second comment on his blog post, internal testing can't possible cover every single third party shell extension on the planet. (Nor does he try to use that as an excuse for his screw-up.)
  
  --
  Using HTML in email is like putting sound effects on your phone calls. Just say <strong>no</strong>.
4. Re:An error he committed? by drinkypoo · 2007-05-04 09:19 · Score: 1
  
  Well, I have no love for Apple either (I remember System 7, and frankly I'm not all that impressed by OSX in ANY way, including look-and-smell) but I've been using OSX off and on since 10.1 and have never had the kind of problems with any OSX update that I did with whatever Win2k update that was. SP1 maybe? I blocked it out it was so bad. I just went from the latest version of OSX 10.3 to 10.4.9 (we made the update late) and the system works WAY WAY WAY better than it did before the update.
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
5. Re:An error he committed? by mosch · 2007-05-04 09:23 · Score: 1
  
  C'mon, admit it: you held your breath, didn't you?
  
  No, I just watched them install. OS X isn't some bug-free panacea (I've had grey screens, etc.) but I've never had an update blow up my computer.
6. Re:An error he committed? by Anonymous Coward · 2007-05-04 09:24 · Score: 0
  
  I bet the ExitProcess() error happened in IE where the thread interface was used and the testing was done by involking the vlclsid.exe from a shell or the VC IDE where the process interface was used. They changed the front end of the program and forgot to change the back end.
7. Re:An error he committed? by geekoid · 2007-05-04 09:25 · Score: 0, Redundant
  
  NT 3.1?
  
  --
  The Kruger Dunning explains most post on /. http://en.wikipedia.org/wiki/Dunning%E2%80%93Kruger_effect
8. Re:An error he committed? by geekoid · 2007-05-04 09:28 · Score: 3, Insightful
  
  While Kudos to him for taking responsibility, the QA excuse doesn't seem to fit.
  
  IT was an error hat happened all the time, under its most basic use.
  
  While the global OS QA might be excused for some wierd bug that happens under unforseen circumstance, this wasn't even tested to see if it fixed what it wqas supposed to.
  
  Sounds like sloppy(i.e. none) QA to me.
  
  --
  The Kruger Dunning explains most post on /. http://en.wikipedia.org/wiki/Dunning%E2%80%93Kruger_effect
9. Re:An error he committed? by drinkypoo · 2007-05-04 09:28 · Score: 1
  
  internal testing can't possible cover every single third party shell extension on the planet.
  
  Especially if they aren't actually trying to break it!
  
  If they were trying to break it, then they almost certainly would have discovered this flaw.
  
  Most likely they just have a small handful of shell extensions that they would install and test with.
  
  What this says to me is that there was no intelligence behind the test plan.
  
  Sure, the guy made a mistake. But it is the purpose of testing to make sure that the software works correctly. They obviously did not have a sufficiently complicated set of tests for the software.
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
10. Re:An error he committed? by BAILOPAN · 2007-05-04 09:29 · Score: 1
  
  If you read the article, you'd see he addresses that sort of comment. There's two issues:
  
  1) There's a lot of pressure to get a security patch out as soon as possible;
  2) It's impossible to test every single case (the breaking case was a shell extension for a printer that wasn't even being manufactured anymore)
  
  As Raymond likes to say, "you can't have everything."
  
  --
  If you say "here goes my karma" I will bite you!!!
11. Re:An error he committed? by Quantam · 2007-05-04 09:34 · Score: 1
  
  Okay, he made an error. Why the HELL wasn't it caught in QA? Microsoft wants us to believe that the reason that we have to wait for patches is that they are getting some kind of exhaustive QA. This patch and executable were specifically created to avoid problems with invalid shell extensions. Don't you think that given that fact the thing to do would be to test it with some invalid shell extensions?
  
  How to tell if somebody has only read the summary: they ask a question that was explicitly answered in the link. How to tell that most mods haven't read the article either: said post gets modded insightful.
  
  --
  You have tried to support your argument with faulty reasoning! Go directly to jail; do not pass Go, do not collect $200!
12. Re:An error he committed? by sconeu · 2007-05-04 09:39 · Score: 1
  
  NT4 SP6, I believe SP6a was the fix.
  
  --
  General Relativity: Space-time tells matter where to go; Matter tells space-time what shape to be.
13. Re:An error he committed? by Quantam · 2007-05-04 09:39 · Score: 1
  
  Most likely they just have a small handful of shell extensions that they would install and test with.
  
  I see even after people responded to you you STILL didn't RTFA. The particular shell extension was for a printer that was so old it wasn't produced at the time the patch was made. How many pieces of hardware does Windows support? Do you want them to test EVERY one of them with every single bug fix? You're batshit insane; even the entire OSS community combined couldn't pull that off.
  
  --
  You have tried to support your argument with faulty reasoning! Go directly to jail; do not pass Go, do not collect $200!
14. Re:An error he committed? by drinkypoo · 2007-05-04 09:43 · Score: 1
  
  I do remember service packs that broke verious versions of windows NT that had some software loaded on it that really shouln't have made it out of beta testing.
  
  Yes, they were running Windows NT.
  
  But seriously, Microsoft's claim to fame is backwards compatibility... significantly changing the way the system works without even making a minor revision update (let alone a major one) is very naughty.
  
  XPSP2 broke a mad pile of software. Before that we had windows 2000 service pack... 2? I think that was the REALLY horrible one.
  
  I recall there was a very bad service pack for NT4, as well. But nothing bad with 3.51. I miss 3.51 a lot, but it only supports filesystems up to 2GB and things like that, so no matter what it's pretty useless today.
  
  And of course, no version of NT comes even close to the sexiness that is Linux. But I've been using NT since 3.51 (I did not have the misfortune to get involved earlier) and while I might not remember all the details of WHEN I was screwed over by service packs, who would want to? It's not like I'm going to start running old versions.
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
15. Re:An error he committed? by mangu · 2007-05-04 09:53 · Score: 1
  
  How many pieces of hardware does Windows support? Do you want them to test EVERY one of them with every single bug fix?
  
  The way I envision Microsot QA is a huge warehouse full of every hardware device they could get, with computers having every version of OS that they ever shipped and a switching system to let any of that hardware be tested with any of the computers. Total cost of that warehouse would be in the million$, which means about 0.1% of total Microsoft market capitalization.
16. Re:An error he committed? by dedazo · 2007-05-04 09:57 · Score: 1
  
  have never had the kind of problems with any OSX update that I did with whatever Win2k update that was.
  
  Absolute control of the hardware on which your software runs can come in handy, I guess.
  
  --
  Web2.0: I love when people Flickr my cuil and digg my boingboing until my google is reddit and I start to yahoo
17. Re:An error he committed? by drinkypoo · 2007-05-04 09:59 · Score: 0, Flamebait
  
  If you read the article, you'd see he addresses that sort of comment.
  
  Now look kid, I read the fucking article. Don't make stupid assumptions. It only makes YOU look like an ass. It doesn't do shit to me except piss me off and suggest to me that I'm dealing with an idiot.
  
  1) There's a lot of pressure to get a security patch out as soon as possible;
  
  Microsoft still typically makes us wait for them, days to weeks after they are reputed to be completed. One of two things is true in these situations. Either the patch is still under development and they are somehow lying to us about this, which I don't see any benefit in, or they are doing something to the patch, which might or might not be QA.
  
  But Microsoft claims that the delay is for QA. So surely you can understand how I might be dismayed at the apparent lack thereof.
  
  2) It's impossible to test every single case (the breaking case was a shell extension for a printer that wasn't even being manufactured anymore)
  
  You don't need to test every case, only every case it's possible to achieve, and if Microsoft isn't running complex automated test suites, then what ARE they doing with all that time? Working harder instead of smarter, and having a bunch of interns run the test cases manually or something?
  
  And since reports of that patch causing hanging were widespread, it seems foolish to assume that all of them were due to the printer driver, which was never explicitly stated.
  
  More information is necessary to clear this up. A simple blog post with one little note for slashdot readers does not a complete clarification make. It's interesting but mostly, to me, it raises more questions.
  
  You are welcome not to ask these questions, but personally I believe almost nothing I read or am told and only half of what I see.
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
18. Re:An error he committed? by bmajik · 2007-05-04 10:04 · Score: 1
  
  Oh.
  
  http://blogs.msdn.com/mattev/archive/2004/06/21/16 1770.aspx
  
  You should read this, which I wrote a few years ago, and which upset many mac zealots (as seen from the comments)
  
  --
  My opinions are my own, and do not necessarily represent those of my employer.
19. Re:An error he committed? by drinkypoo · 2007-05-04 10:06 · Score: 1
  
  Note that both XP and Win2k have -a-designated service packs, and for much the same reason, although the NT4 one was the one (IIRC) that gave me such a headache. Reports of the destruction started coming in RIGHT after I installed the damned thing on my first system. And only NT system at the time, since I was working for a mostly-Unix shop.
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
20. Re:An error he committed? by Anonymous Coward · 2007-05-04 10:22 · Score: 0
  
  What I remember about NT is that you had to reboot to apply the change of cursor position caused by moving the mouse, and had to re-apply the latest servicepack when you dared to toggle a checkmark. But this remembrance may be colored over time.
21. Re:An error he committed? by Alon+Tal · 2007-05-04 10:23 · Score: 1
  
  Raymond answered this question in his comments section -- see http://blogs.msdn.com/oldnewthing/archive/2007/05/ 04/2402028.aspx#2412469. The bug was in a shell extension provided with a printer that was not even manufactured anymore when this patch was developed. Even exhaustive QA cannot be reasonably expected to test all Windows shell extensions in existence.
22. Re:An error he committed? by bmajik · 2007-05-04 10:28 · Score: 5, Insightful
  
  I'm a software tester at Microsoft, although I'm not involved with the Windows team or the security process.
  
  Just so we're clear:
  
  Microsoft is not selling you products that have gone through exhaustive QA, nor are we issuing patches that have gone through exhaustive QA.
  
  The key word here is "exhaustive".
  
  You can imagine that as much as it costs a business when they get a hotfix from us that breaks them, it costs us _at least_ that much in real employee hours (dollars), not to mention the direct and indirect, monetary and non-monetary costs of having to admit that we screwed up a patch.
  
  Software testing cannot tell you how good your product is, only in what ways it doesn't appear to be bad. Every release decision is a _decision_, and its based on necessarily incomplete data put together by imperfect humans with non-infinite time.
  
  A release decision is a culmination of many nested risk/reward tradeoffs. Sometimes, that decision gets made incorrectly, or at least gets made in a way with known or even unknown downsides.
  
  You'll notice that the patch was an interaction problem with an antique 3rd party product. From my time doing admin work on Solaris, IRIX, and Linux machines, I can tell you the big difference between this situation and "those" situations. I never _ran_ 3rd party software on Solaris, IRIX, or Linux (well, I ran 3rd party software on linux all the time, but i just expected it to break anytime i patched anything.. it was a mandatory recompile of any dependant libraries and applications).
  
  I also think your glasses are a little rosy. There were some IRIX patches back in the day that you couldn't back out. Or that wrecked your XFS volumes. I think in every operating system there has been at least one instance of a patch / upgrade / new version that some user opted to back out, because it hurt them and their scenarios more than it helped.
  
  I run very little non-Microsoft software on my windows machines and thus I rarely worry about patches from MS. If you're doing something weird, you need to be more risk averse. IIRC, Microsoft's official recommendation for businesses with critical systems is to install patches in a pre-production environment to ensure compatability with the specific intricacies of your business. You can choose to play fast and loose, but you should be aware that you're making a risk/reward tradeoff decision, based on incomplete data.
  
  Just like we have to do.
  
  --
  My opinions are my own, and do not necessarily represent those of my employer.
23. Re:An error he committed? by Quantam · 2007-05-04 10:28 · Score: 3, Funny
  
  Guess what? If one shell extension can cause the problem, then another shell extension can likely cause the same problem. He never explains why that would not be true, so there is no reason to assume that it would not be true. Generally speaking, there's more than one way to write a program that does the same thing, and there's more than one way to arrive at the same error condition.
  
  Thank you for making one of the most obvious (and thus pointless) statements of the century (did you know that things fall to the ground when you drop them? I'm completely serious) Yes, you are absolutely correct. In any relatively deterministic system, doing something bad in a predictable way will cause the same failure, predictably. Obviously, as this is deterministic, who is doing said bad thing in said predictable way is irrelevant; thus, multiple things may do the same bad thing with the same bad outcome. The blindingly obvious question this raises is exactly how many things do this. Whether 1 or 2 (or even 10) pieces of hardware do this makes little different if there's 5,000,000 pieces of hardware to test, and you only have the manpower to test 5,000 of them. Would you call testing a patch with merely 5,000 pieces of hardware horribly negligent? If so, I suggest you go work for them, and demonstrate that it's possible to test all 5,000,000 pieces in one month (several times, actually, as there are several patches to check).
  
  There is even a comment which raises a more detailed question about the explanation, which has not yet been answered.
  
  That poster is correct in his last paragraph (and the preceding paragraph, which indicated the problem): it was overlooked because, if it was going to break in this patch, it would have been breaking before this patch, as well; only the timing would have changed. Do you check every morning when you get up to make sure the sky is still blue and the grass is still green (I can smell the jokes coming already)? There are a million ways to do things that MSDN tells you specifically to never ever ever do; do you expect MS to check third-party code for every single one of them?
  
  On one last personal note: Don't try to out-asshole me. You will fail. I'm not exactly proud of that, but you need to pull your head out of your ass before you come after me.
  
  I am hurt that you give me so little credit. I would never attempt to challenge you at something I am so totally and obviously outclassed in. I would be much more concerned if you put me on your friends list.
  
  --
  You have tried to support your argument with faulty reasoning! Go directly to jail; do not pass Go, do not collect $200!
24. Re:An error he committed? by Quantam · 2007-05-04 10:42 · Score: 1
  
  The way I envision Microsot QA is a huge warehouse full of every hardware device they could get, with computers having every version of OS that they ever shipped and a switching system to let any of that hardware be tested with any of the computers. Total cost of that warehouse would be in the million$, which means about 0.1% of total Microsoft market capitalization.
  
  A million monkeys on a million computers in a big warehouse, eh? Heh, now there's a mental image. I wonder how long it would take them to do Q/A on Windows...
  
  --
  You have tried to support your argument with faulty reasoning! Go directly to jail; do not pass Go, do not collect $200!
25. Re:An error he committed? by Lars+T. · 2007-05-04 10:46 · Score: 2, Funny
  
  Yeah, trying to fix a broken registry is SOOO much easier.
  
  --
  Lars T.
  To the guy who modded me down from perfect to terrible Karma - Apple haters still suck
26. Re:An error he committed? by Anonymous Coward · 2007-05-04 10:49 · Score: 0
  
  Yeah... this kind of stuff *never* happens with OSS /rolleyes
27. Re:An error he committed? by Duhavid · 2007-05-04 10:54 · Score: 1
  
  NT4.0 was a bit broken itself...
  
  I was writing a component to track files in a system, and we
  were not to use a DB for this. So, we stored them in the file
  system. I wrote a stress tester for this component, which
  caused it to write files like mad. Long story short, after
  all the activity, the machine appeared to be OK. Next reboot,
  however, it would die. Repeatable. Very repeatable.
  
  Fixed in the next SP.
  
  Course, recently, we just decommissioned a DB server, 2003
  server, MSSQL 2000, if I ran a script against the DB
  that was "too stressfull", the machine would power off,
  no entry in the event log, no warning, no nothing.
  OS was not hung, there was nothing, except a need to
  power the machine back on.
  
  --
  emt 377 emt 4
28. Re:An error he committed? by Nutria · 2007-05-04 11:03 · Score: 1
  
  Microsoft is not selling you products that have gone through exhaustive QA, nor are we issuing patches that have gone through exhaustive QA.
  
  Why not?
  
  http://finance.yahoo.com/q/bs?s=MSFT&annual
  Last year, your employer earned US$12,600,000,000 profit and has US$34,000,000,000 in cash. Certainly they could pony up for a comprehensive test suite.
  
  But... "you" don't have to. Why should MSFT create a decent product when sheeple, people who are managed by short-sighted idiots, and people trapped by vendor lock-in are shoveling money hand-over-fist into your coffers?
  
  --
  "I don't know, therefore Aliens" Wafflebox1
29. Re:An error he committed? by cheater512 · 2007-05-04 11:07 · Score: 1
  
  The fact you posted that on msdn.com AND things like that arent common at all on Mac OS means your just trolling.
  
  Also keep in mind that if Windows had the same symptoms then the box would just get a reinstall.
30. Re:An error he committed? by Nutria · 2007-05-04 11:08 · Score: 1
  
  As he points out in his response to the second comment on his blog post, internal testing can't possible cover every single third party shell extension on the planet.
  
  But it shouldn't have such a fragile design in the first place.
  
  Of course, a lot of things about MSFT operating systems should be different, but aren't.
  
  --
  "I don't know, therefore Aliens" Wafflebox1
31. Re:An error he committed? by Blakey+Rat · 2007-05-04 11:46 · Score: 4, Insightful
  
  And the manpower to run it all costs... how much?
  
  Seriously, though, just putting all that equipment in one building would create a zeppelin-hangar-sized building. Finding any specific router or PCI modem would be near impossible. The logistical difficulties of your plan I think would be insurmountable, not even considering the manpower question.
  
  The real point Raymond mentions is that if MS does tons of testing on all the hardware they have available, they get bad press for being slow to release patches. If not, they get bad press for having to recall buggy patches. It's a lose/lose situation for them.
  
  --
  Comment of the year
32. Re:An error he committed? by VertigoAce · 2007-05-04 11:51 · Score: 1
  
  Exhaustive QA means that you tried every possible case. Any state that the computer could possibly be in you must have tested. Any possible combination of hardware and drivers must be tested. In other words, Microsoft would have to test more combinations than will ever exist in the wild. If your system has more than 8 bytes of memory, good luck testing all possible combinations.
  
  So your test plan can't be "exhaustive" (he was using the definition: "treating all parts or aspects without omission"). Instead you try to test as many aspects as you reasonably can. This is what Microsoft does for its tests.
33. Re:An error he committed? by Anonymous Coward · 2007-05-04 11:57 · Score: 0
  
  Way to not read the post, buddy.
34. Re:An error he committed? by geekoid · 2007-05-04 13:16 · Score: 1
  
  "Sounds like sloppy(i.e. none) QA to me."
  
  Much like the QA that went into the spelling of my post.
  
  --
  The Kruger Dunning explains most post on /. http://en.wikipedia.org/wiki/Dunning%E2%80%93Kruger_effect
35. Re:An error he committed? by rtb61 · 2007-05-04 13:24 · Score: 0
  
  Why bother getting upset either way. The whole thing has the smell of being nothing but a scripted marketing piece. Humanising the beast, M$ we do testing, honest (truly hard to believe after some of the most stupid possible bugs).
  As for the sneaky, "was included with a printer driver for a printer that is no longer manufactured", typical microspeak, it doesn't say that it also wasn't included with a whole range of other drivers, just that it was specifically in that one (sounds better in marketing terms, last years model of this years rebadged identical printer).
  M$ problem has always been the quick dirty fix to keep bad coding concepts alive, insufficient testing, releasing a beta as final and using customers as free testers, and always trying to rebadge support pack as a new product, but still stuffing up the concept by inserting news bugs and security holes.
  Now M$ are getting their coders to publicly take blame as individuals for the failings of an incompetent management team, a new low is M$ marketing.
  
  --
  Chaos - everything, everywhere, everywhen
36. Re:An error he committed? by Anonymous Coward · 2007-05-04 13:45 · Score: 0
  
  Course, recently, we just decommissioned a DB server, 2003
  server, MSSQL 2000, if I ran a script against the DB
  that was "too stressfull", the machine would power off,
  no entry in the event log, no warning, no nothing.
  OS was not hung, there was nothing, except a need to
  power the machine back on.
  
  You had a bad capacitor on the motherboard/cards or a bad ram chip. Classic behavior.
37. Re:An error he committed? by rhk · 2007-05-04 14:15 · Score: 1
  
  Now there's conflicting information here. One poster says it was a common HP printer. You say it was an "antique 3rd party product". Now, unless microsoft makes printers now, I'm guessing you have a good chance of having 3rd party printer drivers on your machine.
38. Re:An error he committed? by RobertM1968 · 2007-05-04 14:30 · Score: 1
  
  Ya know, you are right, you are an arrogant ass, or whatever you admitted to be - and pretty good at it, as you also admitted... but right as rain as well!!! :-)
  Gotta add you to my friends list - for both reasons!!! ;-)
  Oh - but here's something to add to your response... if MS knew which printer driver for which outdated printer (as they seem to be indicating they do), then why not use that driver for the test? Of course, I too agree with you and think especially with the number of responses about this fix causing issues, that printer driver was far from the only culprit - or may not even have been the culprit for the bug that surfaced in the fix...
  Well, I'm content with people here reading 1/4 of the article and posting dribble - especially since your responses point out their shortcomings far better than I could!
  :-)
  
  --
  StarTrekPhase2 - The Five Year Mission Continues!
39. Re:An error he committed? by RobertM1968 · 2007-05-04 14:35 · Score: 1
  
  Raymond did not answer the question, he made a statement that may or may not be unrelated.
  "Is it raining out?"
  "Dont you see my umbrella?"
  And what does that mean? Nothing other than I brought my umbrella with me to work for reasons I havent stated... nor have I stated it was raining.
  Raymond's marketing doublespeak doesnt say much of anything other than he made a mistake (with some explanation of the mistake) and that he is upset that people complain that a patch takes too long and that people complain that not enough QA is done. Nothing more and nothing less.
  
  --
  StarTrekPhase2 - The Five Year Mission Continues!
40. Re:An error he committed? by bmajik · 2007-05-04 15:26 · Score: 1
  
  Actually, you'd be wrong -- HP dropped support for my printer in Vista (Photosmart 7150), last time I looked.
  
  Once upon a time, you could just shoot bits at the parallel port and printing would work. The HP 7150 "driver software" (which is 200mb, by the way), doesn't ever detect USB device insertion on vista. Why HP feels the need to have some convoluted, assinine way of doing this is beyond me, but they do.
  
  So no, there is no HP print driver stuff on my main vista machine at home. But it's not for want of trying.
  
  --
  My opinions are my own, and do not necessarily represent those of my employer.
41. Re:An error he committed? by Quantam · 2007-05-04 15:32 · Score: 1
  
  So you're saying Microsoft is pure and distilled evil and it's impossible for them to do anything correct or righteous, so anything and everything that they say that isn't sinister must be lies, damned lies, and marketing speak. That is a beautiful self-rebuttal. *claps*
  
  --
  You have tried to support your argument with faulty reasoning! Go directly to jail; do not pass Go, do not collect $200!
42. Re:An error he committed? by grcumb · 2007-05-04 17:01 · Score: 1
  
  I can tell you the big difference between this situation and "those" situations. I never _ran_ 3rd party software on Solaris, IRIX, or Linux (well, I ran 3rd party software on linux all the time, but i just expected it to break anytime i patched anything.. it was a mandatory recompile of any dependant libraries and applications).
  
  Could you please clarify what you mean here? You're apparently implying that Linux even has a concept of 'third party software'. All software is third party in Linux, because there's no first or second party in the first place. 8^)
  
  I run very little non-Microsoft software on my windows machines and thus I rarely worry about patches from MS. If you're doing something weird, you need to be more risk averse.
  
  Er, sorry, I think you need to clarify again. Are you implying that running non-MS software on Windows is 'weird' and risky? Maybe we make our servers do different things, but I can tell you that I have only very rarely managed to find an MS-only solution for just about any business need I've ever faced. In almost 100% of the cases, MS did not - could not - do everything required.
  
  That's certainly not weird. It's risky, I'll grant you, but not in any way that Microsoft QA should be proud of.
  
  --
  Crumb's Corollary: Never bring a knife to a bun fight.
43. Re:An error he committed? by Helldesk+Hound · 2007-05-04 17:38 · Score: 2, Interesting
  
  > Okay, he made an error. Why the HELL wasn't it caught in QA? Microsoft
  > wants us to believe that the reason that we have to wait for patches
  > is that they are getting some kind of exhaustive QA.
  
  M$ doesn't have "QA". It has QC.
  
  Quality Assurance is the fence at the top of the cliff that at each stage prevents faults from arising, and thus from impacting on later stages of development.
  
  Quality Control is the ambulance at the bottom of the cliff that responds to the emergency call once the fault has been discovered.
  
  Most places do not implement QA. They frequently have only the most rudimentary QC.
  
  Given the phenomenal number of security flaws and other bug fixes that have to be applied every month (that's every month since WindowsXP was released six years ago), what type of quality management do you think M$ uses in it's development process?
44. Re:An error he committed? by Anonymous Coward · 2007-05-04 20:33 · Score: 0
  
  IT was an error hat happened all the time, under its most basic use.
  
  In this particular case, it was an error that occured when you installed a particular 3rd party shell extension that came with a printer driver for a model of printer that the manufacturer stopped making years prior to the issue at hand.
  
  Yeah, I can't imagine how that one slipped past QA...
45. Re:An error he committed? by Keeper · 2007-05-04 20:41 · Score: 1
  
  Are you implying that running non-MS software on Windows is 'weird' and risky?
  
  No, he's implying that the more software you put on the machine, the more likely it is to find software on the machine that has shit code which happens to work more as a result of luck than deliberate effort.
46. Re:An error he committed? by SEMW · 2007-05-04 23:32 · Score: 1
  
  Huh? Were you reading a different post to me? The patch worked fine except if a 5600 series HP printer driver (if one of the comments lower down was correct) is installed.
  
  --
  What's purple and commutes? An Abelian grape.
47. Re:An error he committed? by Duhavid · 2007-05-05 04:19 · Score: 1
  
  We swapped out the ram, so that was not it.
  
  Must be the "map cap" motherboard.
  
  Thanks!
  
  --
  emt 377 emt 4
48. Re:An error he committed? by IamTheRealMike · 2007-05-05 06:04 · Score: 1
  
  No, you didn't understand the explanation. This sort of understanding failure is exactly what caused the need for the verclsid program in the first place!
  
  The problem was that this specific shell extension (for an obsolete HP printer) contained a concurrency bug - it tried to synchronize with a thread in its DLL detach function. This is never correct, because in a DLL detach you can't make any assumptions about the liveness of other threads. Because there are buggy shell extensions out there that hang, they had a watchdog thread, but this design can't stop hangs that occur during shutdown of the process itself as this one did (which is presumably a rare kind of bug).
  
  I really find it amazing that despite a clear explanation from Raymond, there are people here trying to blame Microsoft! It just goes to show that programming is hard, I guess ....
49. Re:An error he committed? by Anonymous Coward · 2007-05-05 06:28 · Score: 0
  
  Guess what? If one shell extension can cause the problem, then another shell extension can likely cause the same problem.
  
  Please tell us where we can find such a shell extension.
50. Re:An error he committed? by rhk · 2007-05-05 14:19 · Score: 1
  
  Except that the patch in question was for windows XP, not vista, IIRC.
51. Re:An error he committed? by spongman · 2007-05-05 15:28 · Score: 1
  
  don't buy HP devices. their driver support on both windows and mac is horrendous. not only do they install tons of unnecessary stuff, their drivers often circumvent the OS-provided APIs for performing common functions (again, windows and mac, both) thus breaking functionality in many apps that use those APIs, and since they do all this backdoor hacking, their drivers are invariably broken by OS upgrades, and they use this as a way to force you to buy a new device in conjunction with your OS upgrade. Lexmark isn't much better. The only printer's i've known to have decent drivers and driver servicing are the higher-end epson & canon models.
52. Re:An error he committed? by rtb61 · 2007-05-06 13:16 · Score: 1
  
  M$ bears the burden of the reputation it created, and just what is all this pseudo religious nonsense coming out of micro-softies, evil, wtf, they just suck. No 'damned' lies just the same old boring marketing lies of omission and misdirection and endless woulda coulda shoulda. Besides it's fun to poke holes in the endless microspeak coming out of redmond. and the reality is they are becoming more pitiful rather than threatening ;).
  
  --
  Chaos - everything, everywhere, everywhen
53. Re:An error he committed? by mosch · 2007-05-07 07:32 · Score: 2, Insightful
  
  So, somebody installed 10.3 on what was either the oldest possible supported laptop, or possibly an unsupported laptop, then a video driver update caused some problems, all of which were fixable by somebody who fully admitted that they don't know OS X, only Unix and Windows.
  
  Obnoxious, sure, but not really different than any other OS. (In fact I have had brand-spanking new Windows hardware that would lose video if I applied WindowsUpdate recommended driver updates.)
  
  I'd have to be pretty stupid to think that any OS is perfect, but I'd have to be even dumber to think that your awful, whiny article (hosted on MSDN, LOL) is worth any discussion at all.
Lesson by Jeffrey+Baker · 2007-05-04 09:09 · Score: 4, Insightful

I think the lesson here is not that this guy should have been more careful about programming, it's that no amount of careful programming can overcome a stupid design. It's stupid that there are magical filenames in the form of UUIDs that cause Explorer to load and run arbitrary DLLs. You can't get around this stupidity with some kind of speculative watchdog thread that works with what sound to me like some seriously questionable heuristics.

They should have simply got rid of the magic naming system in favor of something explicit, such as a Shell Extension Interface that a shell extension must fully implement.
1. Re:Lesson by slamb · 2007-05-04 10:07 · Score: 1
  
  It's stupid that there are magical filenames in the form of UUIDs that cause Explorer to load and run arbitrary DLLs. ... They should have simply got rid of the magic naming system in favor of something explicit, such as a Shell Extension Interface that a shell extension must fully implement.
  
  It sounds like they tried to do that, but he said: "As we saw earlier, lots of people mess up IUnknown::QueryInterface". I'm not familiar with Windows or COM, but I take that to mean that the way they find out what interfaces an object implements is to...well, load and run arbitrary DLLs, as you say, then ask the class what interfaces it supports. They must have some central registry of class IDs to their locations on the filesystem, not one specific to shell extensions.
  They could include in that registry the supported interfaces of each class and only load as shell extensions classes which explicitly list that interface, but...they'd lose backward compatibility. That's a show-stopper to Microsoft. So no matter how stupid we might think the interface is, they're stuck with it and have to hack to make it work as best as they can. (From what I understand, that happens a lot in the Windows world.)
  To me, the lesson is this: either be willing to undo all your previous decisions (screw backward compatibility - not a popular decision with third parties using your interfaces!) or always get it right from the beginning, perfectly anticipating all changes over the lifetime of your decision (not an easy thing to do). Linux seems to basically choose the first path, and Windows...well...I guess they're trying to take the second path, but it seems like they've screwed up many times before and still are paying for it.
2. Re:Lesson by mac.man25 · 2007-05-04 10:17 · Score: 1
  
  They should have simply got rid of the magic naming system in favor of something explicit, such as a Shell Extension Interface that a shell extension must fully implement.
  
  So you mean they should have rewritten a core OS API after it had already been gold mastered? Yes, it was a stupid design to begin with, but that doesn't mean that it's possible to rewrite something like that. This is exactly the reason that Vista is having problems with compatibility. Because core API's were rewritten.
3. Re:Lesson by biscon · 2007-05-04 11:59 · Score: 2, Informative
  
  "They should have simply got rid of the magic naming system in favor of something explicit, such as a Shell Extension Interface that a shell extension must fully implement." Seems to me like they had, how would you implement plugins otherwise?. The problem is that if explorer loads these plugins (which do adhere to an interface) and they do something stupid, explorer will hang, since it is the host process. This is bad since explorer.exe on windows is responsible for running the shell.
  Therefore they choose to make a separate process (that vert something exe) try and load the plugin and run some tests. Questionable heuristics I agree, but giving those circumstances, I can't come up with any other way of doing it.
  The magic names are used for creating instances of COM objects which as far as I know both KDE and Gnome also use in the form of DCOP and DBUS.
4. Re:Lesson by I'm+Don+Giovanni · 2007-05-04 12:26 · Score: 3, Informative
  
  You clearly have no clue how COM CLSIDs work, do you?
  There is no "magic naming system". Each plugin implements the shell extention interface and registers its CLSID; when explorer needs to load the plugin for a particular CLSID, it looks it up in the registry, finds the corresponding dll, loads it, and accesses the shell extension's COM interface.
  
  And to think that your post was modded "Insighful" rather than "Arrogantly Ignorant".
  
  --
  -- "I never gave these stories much credence." - HAL 9000
5. Re:Lesson by Jeffrey+Baker · 2007-05-04 14:04 · Score: 2, Informative
  
  Thanks for your feedback ... The magic filenames are of the form {1768bcfe-9acf-4af5-b857-32eb9c640c4e} and if you name a file that way on the Desktop in Windows, Explorer looks up that UUID and loads the DLL, then QI's it into existence. The "magic" part here is that I can use _any_ DLL and Explorer will still try to QI it into a shell extension, which is obviously grossly unsafe, which is why they had to work around it.
6. Re:Lesson by Viol8 · 2007-05-05 04:45 · Score: 1
  
  "Seems to me like they had, how would you implement plugins otherwise?. The problem is that if explorer loads these plugins (which do adhere to an interface) and they do something stupid, explorer will hang, since it is the host process. This is bad since explorer.exe on windows is responsible for running the shell."
  
  Do what most unix programs do - fork() first. So if the child process crashes the parent process happily carries on regardless. AFAIK Windows processes couldn't do fork() , perhaps this is not longer the case. If it still the case then MS needs to seriously consider adding it in since multi threading a single process isn't the answer to everything as this situation proves.
7. Re:Lesson by IamTheRealMike · 2007-05-05 06:12 · Score: 1
  
  Erm, how does your proposal fix this? COM has a simple negotiation mechanism where Explorer can say "Do you support FOO?" and the extension can say "Yes, here you go" or "No, I don't". If you get rid of the COM indirection in favor of a simpler plugin system, you'd have to drop this negotiation mechanism or re-implement it, and that is what would be grossly unsafe.
  
  COM is not the problem here. The problem is buggy code. The only policy design that is worth debating here is whether it makes sense to allow 3rd party code to load into a critical process like Explorer. Now, it's easy to say "never!" here but every OS does it. Hell MacOS X and Linux allow the loading of third party code into anything at all. As Raymond has explained many times before, large parts of Windows were designed back in the days when people were basically trusted to do the right thing and not screw up. This is now known to be a bad idea so modern parts of Windows are much more robust against "improvement" by 3rd parties, but the shell dates back to the early 90s and reflects the design mentality of the era.
Testing, testing, then releasing to the world... by Anonymous Coward · 2007-05-04 09:20 · Score: 0

The people at Norman Virus Control development will enjoy reading this... when they are not still at work or vast asleep.
Re:I just wanted to share by Anonymous Coward · 2007-05-04 09:30 · Score: 0

Next time make sure to do that in a urinal. That's always funny.
Honesty by florescent_beige · 2007-05-04 10:01 · Score: 5, Insightful

This illustrates the kind of employee I like to have. One who can talk about his mistakes the same way he talks about anything else work-related.

Some years ago I myself made a rather expensive mistake which involved the design of an aircraft structure. The fellow I was working for at the time had one of those razor-blade intellects and I got called into his office for a chat. When he asked me what happened I had two choices, weasel or turkey. In engineering it's always possible to talk the complicated talk and hope to obfusticate your way out of a situation, but fortunately I said "I make a mistake." And you know what? That was exactly the answer he was looking for.

You see, the most important thing is not to be perfect, it's to be honest. That's what a boss, of which I am one now, wants.

If you have a boss that doesn't want that, better watch out for yourself.

--
Equine Mammals Are Considerably Smaller
1. Re:Honesty by Anonymous Coward · 2007-05-04 10:40 · Score: 0
  
  Yeah good point, but what happens when your bosses are basically dishonest?
  
  Like deceitful marketing, throwing tantrums, throwing chairs and creating McSoftware that makes McFood look gourmet?
2. Re:Honesty by labnet · 2007-05-04 12:39 · Score: 3, Insightful
  
  Being a Boss as well, thats exactly what our culture looks for.
  Honesty, but without emotional baggage.
  A stuffup is a stuffup, learn and move on.
  
  Reading /. for so many years now, you would think 90% of posters are uber humans that never make a mistake, and be dammed if you do. Not sure if I would want to work for most of the /. crowd.
  
  --
  46137
3. Re:Honesty by dkf · 2007-05-05 11:46 · Score: 1
  
  Yeah good point, but what happens when your bosses are basically dishonest?
  You get yourself different bosses, one way or another. Life's too short to put up with an asshole over you.
  
  --
  "Little does he know, but there is no 'I' in 'Idiot'!"
This one bit a client of mine... by ktakki · 2007-05-04 10:22 · Score: 5, Informative

On the day after Patch Tuesday, January 2006, I got a somewhat frantic call from a client. She's a lawyer, had a filing deadline, but could not save a document in MS Word. That's not all that this patch broke: you couldn't open My Computer or My Documents on the desktop (though you could navigate to them by typing the path in the Start -> Run box), and IE wouldn't let you type just "www.[website].com" in IE's address bar. You had to prepend the "http://".

I verified that "Save" and "Save As..." were not working in Word. Word would just hang and only Task Mangler could shut it down. I carry the Sysinternals utilities on CD and USB key, so I rebooted and ran FILEMON, REGMON, and PROCEXP to see what was happening when I tried to save a doc in Word. Sure enough, Word would spawn verclsid.exe as a child process and then hang.

I googled "verclsid" and "Explorer", got nothing on the web and about a dozen Usenet posts from people having the same problem. I played a hunch and renamed verclsid.exe to verclsid.exX. I do that when I'm manually hunting malware that leaves .exe and .dll files that are named just like Windows system files. Keeps my foot bullet-free.

Problem solved. When the patch for the patch came out, a working verclsid.exe was dropped in %system% and I deleted the .exX.

Oh, and the buggy third party shell extension came with a very common HP DeskJet printer. As for Google, the next day I googled "verclsid": there were hundreds of web results and Usenet hits. The day after, tens of thousands. This one bit a lot of people in the ass.

k.

--
"In spite of everything, I still believe that people are really good at heart." - Anne Frank
1. Re:This one bit a client of mine... by Anonymous Coward · 2007-05-04 10:37 · Score: 0
  
  Oh, and the buggy third party shell extension came with a very common HP DeskJet printer.
  
  It is unbelievable how much crap HP has distributed with printers and scanners in the past couple of years!
  
  Of course with some experience you can know that something must be wrong when the driver for your printer is a 200MB download, but apparently nobody at HP understands that.
2. Re:This one bit a client of mine... by ktakki · 2007-05-04 10:51 · Score: 1
  
  I completely agree. HP really should make a lightweight drivers-only install available. I always end up whacking HP crapware that loads on startup with msconfig.
  
  On the other hand, installing a business-class HP LaserJet printer is a breeze. Just the drivers, no crapware, no hidden updaters, no Imaging Center, no Share-to-Web bullshit.
  
  k.
  
  --
  "In spite of everything, I still believe that people are really good at heart." - Anne Frank
3. Re:This one bit a client of mine... by Quantam · 2007-05-04 10:53 · Score: 1
  
  As it's always been Raymond's policy not to name names in incidents like this, and you seem to know, could you say what printer model this was?
  
  --
  You have tried to support your argument with faulty reasoning! Go directly to jail; do not pass Go, do not collect $200!
4. Re:This one bit a client of mine... by ktakki · 2007-05-04 12:43 · Score: 1
  
  That particular printer was a DeskJet 5600 series. Don't remember the specific model number, but HP drivers and software tends to be common across models in a series (e.g., 5650 and 5652 would use identical drivers). I believe that one of the 5600 series printers has a flash card reader for printing digital photos directly. This one didn't, but the HP software install loaded all that Imaging Center and Share-to-Web cruft anyway.
  
  The Microsoft KB article that came out later that week mentioned that systems with HP scanners, digital cameras, and printers were affected. I think that this particular buggy shell extension added a "Share-to-Web" or "Open with HP Imaging Center" entry to a context menu.
  
  k.
  
  --
  "In spite of everything, I still believe that people are really good at heart." - Anne Frank
5. Re:This one bit a client of mine... by maxume · 2007-05-04 13:01 · Score: 1
  
  Handy:
  
  http://www.nirsoft.net/utils/shexview.html
  
  --
  Nerd rage is the funniest rage.
6. Re:This one bit a client of mine... by howlingmadhowie · 2007-05-04 18:08 · Score: 1
  
  and people say linux is complicated...
education by Anonymous Coward · 2007-05-04 10:58 · Score: 2, Insightful

Reminds me of a famous story about Jack Welch, former GE CEO. One of the company's division managers made a mistake costing the company $10 million in one quarter. When the quarterly reports came out, he got a call from headquarters telling him to be in Welch's office in NY the next morning. Welch grilled the man for some time, asking him what he was thinking and how he could possibly lose so much money. When it seemed Welch had finished, the manager said he understood that Welch had to fire him now. To which Welch replied, "Why would I fire you when I just invested $10 million in your education?"
Mod parent down by Anonymous Coward · 2007-05-04 11:19 · Score: 0

"Shell Extension Interface that a shell extension must fully implement" - actually, shell extenstions must fully implement their shell extension interface. If you had RTFA (save the "you must be new here" jokes for later please) you would have known that that wasn't the problem.

Rather, they were trying to fix Explorer crashing on trying to see if an object implemented the interface, when this object was itself buggy enough to crash when you try to see if the interface is implemented by the object. Totally different issue.
A bit more background info by Marton · 2007-05-04 11:28 · Score: 4, Informative

This pretty much rendered Windows useless (explorer, file open / save dialogs and the IE7 addressbar were not working) if you had software installed for HP cameras, HP scanners, or any HP DeskJet printer that included a card reader.

Courtesy of JSI FAQ:

You experience one or more of the following strange behaviors:

- You are unable to open special folders, like My Documents or My Pictures.

- Some 3rd party applications hang when accessing My Documents.

- Office files won't open in Microsoft Office if they are stored in My Documents.

- Entering an address into Internet Explorer's address bar does nothing.

- The Send TO context menu has no effect.

- The plus (+) sign on a folder in Windows Explorer does nothing.

- Opening a file via an applications File / Open menu causes the application to hang.

This behavior is caused by a new VERCLSID.EXE binary, which validates shell extensions before Explorer.exe, the Windows Shell, can use them. VERCLSID.EXE is installed by the MS06-015 (908531) security update.

The following 3rd party applications cause VERCLSID.EXE to hang:

Hewlett-Packard's Share-to-Web Namespace Daemon ("%ProgramFiles%\hewlett-packard\hp share-to-web\Hpgs2wnd.exe), auto-started from the Registry Run key and the Startup menu, which ships with:

HP PhotoSmart software
Any HP DeskJet printer that includes a card reader
HP Scanners
Some HP CD-DVD RWs
HP Cameras

Sunbelt Kerio Personal Firewall which has a feature that prompts when Explorer launches VERCLSID.EXE, but you can configure it not to prompt.

To workaround this behavior, add the HP shell extension to the VERCLSID.EXE white list:

1. Open a CMD.EXE window.

2. Type the following command and press Enter:

REG ADD "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Sh ell Extensions\Cached" /V "{A4DF5659-0801-4A60-9607-1C48695EFDA9} {000214E6-0000-0000-C000-000000000046} 0x401" /T REG_DWORD /F /D 1

3. Shutdown and restart your computer.

NOTE: If you find other COM controls or shell extensions that cause this behavior, you can add them to the white list.
1. Re:A bit more background info by Anonymous Coward · 2007-05-04 12:53 · Score: 0
  
  thats why i like windows, its not cryptic to administer like unix ;)
2. Re:A bit more background info by SEMW · 2007-05-04 23:25 · Score: 1
  
  You don't need to use the workaround any more; MS did patch the patch about a few days after it was first released, about a year ago...
  
  --
  What's purple and commutes? An Abelian grape.
3. Re:A bit more background info by jZnat · 2007-05-05 06:43 · Score: 4, Funny
  
  You see, it's this sort of advice that is preventing the year of Windows on the desktop. Once you say, "open a command line", you've failed as an operating system. ;p
  
  --
  'Yes, firefox is indeed greater than women. Can women block pops up for you? No. Can Firefox show you naked women? Yes.'
Linux driver support by Anonymous Coward · 2007-05-04 14:20 · Score: 0

I see even after people responded to you you STILL didn't RTFA. The particular shell extension was for a printer that was so old it wasn't produced at the time the patch was made. How many pieces of hardware does Windows support? Do you want them to test EVERY one of them with every single bug fix? You're batshit insane; even the entire OSS community combined couldn't pull that off. Ah, so the lack of Linux driver support for common peripherals is a feature not a bug!
Re:I just wanted to share by Anonymous Coward · 2007-05-04 14:26 · Score: 0

He'd have to get out of bed first.
Revealing by Anonymous Coward · 2007-05-04 14:33 · Score: 1, Interesting

And points out how their anti-competitive lockin approach has not only bitten them in the ass repeatedly, but only gotten worse as they incur additional scars on the scar tissue. The only reason they have to have their developers struggling to support third party apps is because they have never released proper APIs, and do not follow their own published interface methods when implementing features in Windows. With publicly available, stable APIs and consistent implementation the third party developers could deal with it themselves and everyone would benefit.
It was an HP printer driver... by Kaenneth · 2007-05-04 14:49 · Score: 1

I recently helped someone install a home printer from HP, the SMALLEST "driver" installation option was 400 MEGABYTES, it defaulted to over 800 megs!

That's just insane.

Now multiply that by all the different revisions and patches of the HP drivers, and consider testing each Windows/Application patch against it (on every language, for every version).

You could deforest the planet with test pages before you hit every code path.
Obligatory Mac OS X Tangent by astrosmash · 2007-05-04 17:08 · Score: 1

Speaking of Explorer Shell extensions, recent OS X converts may be curious about how Finder extensions work.

One might assume that the Finder extension framework is sprinkled with all sorts of Cocoa goodness, where objects are magically discovered, loaded, and consumed by Finder though some thoughtfully conceived Objective-C interfaces/protocols.

Nope. It's COM, complete with IUnknowns and HRESULTs, UUIDs and E_FAILs. (The headers are provided by Microsoft). Finder is, after all, just a plain old C++ application (as seen by its svelte memory footprint and quirky bugs/features), and therefore needs a COM-like framework for dynamically loading other C++ objects/extensions. So why not just use COM? This is known as the Core Foundation Plug-in Framework and is actually used in all sorts of places.

If you're curious, drill down into any package in ~/Library/Contextual Menu Items/, open Info.plist, and notice how the CFPluginFactories and CFPluginTypes start to look very similar to certain areas of the Windows Registry.

Well, *I* was surprised, anyway. Considering that both Objective-C and COM were conceived at roughly the same time (late 80s) to solve the roughly the same problem (Smalltalk dynamicism with C performance) I found it interesting that the two should end up meeting, on a Mac no less. I guess there's just no getting around that fact that there's still a lot of code out there that is written in, or needs to be written in static C/C++.

--
ENDUT! HOCH HECH!
Not A patch by aXi · 2007-05-04 17:32 · Score: 0

I do not understand why this guy calls the addition they added a patch, seeing as it did not actually make a change in any existing code. Or might it be so that they made a copy of the explorer executable and patched it to become the verclsid executable ?
Well you got to hand it to the ms developers they surely know how to not fix the problem but rather work around the problem.
This brought back memories about an article that was on slashdot comparing the complexity of a mission critical file retrieval web server linux system call to a windows system call. Where the windows system call graphic looked like a child's first scratchings, no patterns to be recognized, and the Linux equivalence looked well like a Mondrian http://en.wikipedia.org/wiki/Image:Mondrian_CompRY B.jpg.
Backwards compatibility by Peaker · 2007-05-05 02:12 · Score: 1

Its only useful in a closed-source world where you cannot modify programs to suit the new API's.

It accumulates complexity over time.

The result is that even Microsoft can't get reasonably trivial things right.
Not to mention almost all Windows software code being highly complicated compared to equivalent code on other systems.
1. Re:Backwards compatibility by IamTheRealMike · 2007-05-05 06:00 · Score: 2, Insightful
  
  Its only useful in a closed-source world where you cannot modify programs to suit the new API's.
  
  How much open source work have you actually done? I've done a lot, and this idea is one I see very often in people who haven't done any serious API development work before. The approach of attempting to patch every app when an API changes simply doesn't scale. There's a reason all the important open source APIs (gtk, glibc, alsa, X etc) have "gone stable" in the past 5 years, and it's simply a better approach.
  
  Anyway, ignoring the obvious (!!) problems of scaling such an approach, you are confusing two unrelated things. Microsoft can simply/clean up APIs too - they have done it with DirectX and .NET, but that's irrelevant. The problem here is that there are lots of people in the world writing software who perhaps aren't well qualified, and even the ones that are well qualified make mistakes, even with the implementation of quite simple interfaces like IUnknown. I myself have messed up IUnknown before, in fact.
  
  The root problem that caused the hang was attempting to cleanly handle buggy software. This is a common motif in software, hell, it practically motivated the move from the Windows 9x design to the NT fully protected architecture.
  
  The result is that even Microsoft can't get reasonably trivial things right.
  
  Multi-threading is never trivial.
  
  Not to mention almost all Windows software code being highly complicated compared to equivalent code on other systems.
  
  I worked on Wine for a long time, which implements or maps the Win32 API. The complexity of Linux, Windows and MacOS X are all much the same - they are of the same design era, even OS X which is based on lots of older code at its heart. While the more modern parts of the Linux APIs like GTK+ are better than the Win32 equivalents that's just an age thing: the Win32 API has evolved over a much longer period of time. That means it's uglier (the world has learned a lot about API design since the 80s), but it also means there are far more people out there who know it, better tools support, and critically, more apps that use it!
2. Re:Backwards compatibility by Peaker · 2007-05-05 08:20 · Score: 2, Interesting
  
  There's a reason all the important open source APIs (gtk, glibc, alsa, X etc) have "gone stable" in the past 5 years, and it's simply a better approach.
  
  But they only have to maintain source-level compatibility. Microsoft has to maintain binary-level compatibility.
  
  Also, when specific things are extremely and seriously broken, compatibility can be dropped altogether, and some buggy programs broken. Microsoft cannot afford to break buggy programs, even if those are few and far between - nobody can fix them.
  Multi-threading is never trivial.
  
  Using a multi-threaded approach here, when SMP scalability is not an issue, suggests that either their API design is crap, and requires threading, or that their engineers are incompetent and use threads unnecessarily. Threads are never trivial - but what they were trying to do was quite trivial. Its their fault they involved threads in there.
  The complexity of Linux, Windows and MacOS X are all much the same
  
  Compare the complexity of APIs. fork/exec vs CreateProcess. open vs CreateFile. To use either of the Windows ones you have to call multiple APIs with multiple complicated structures documented upon pages and pages of explanations you must do more than skim through.
  
  Windows may have similar complexity in some subsets of its APIs, but the Windows APIs I had the misfortune to use were insanely complicated unnecessarily.
3. Re:Backwards compatibility by Bill+Dog · 2007-05-05 11:15 · Score: 2, Insightful
  
  Using a multi-threaded approach here, when SMP scalability is not an issue, suggests that either their API design is crap, and requires threading, or that their engineers are incompetent and use threads unnecessarily. Threads are never trivial - but what they were trying to do was quite trivial. Its their fault they involved threads in there.
  
  This is one of the stupidest comments I've read here in a long time. A secondary "watchdog" thread was employed to enforce a time-out on the helper program's sniffing of a given shell extension, so in case the main thread hung trial hosting a faulty shell extension, there would still be another thread of logic outside of the infinite loop that could run and tell Windows Explorer the result.
  
  If you knew anything about what you're trying to talk about, you'd know that multi-threading is used for these kinds of situations, as well as in GUI programming. And not just "when SMP scalability is an issue". This has nothing to so with the Win32 API design, it just was tackling a very specific problem. It doesn't mean that the Win32 API "requires threading", or that MS's engineers are incompetent, and that they used an additional thread unnecessarily here. Threads can be trivial, and this is I would say actually the most trivial case of their use. It's to their credit that they involved threads here (and might actually have been the only way), and it's to your ignorance that you don't understand any of this and got everything wrong about it.
  
  The flaw was in doing the WaitForSingleObject() in the DLL's detach process function without specifying a timeout value. Even if you have no reason to think that the thread won't be there to signal you eventually, sometimes the unthinkable occurs.
  
  --
  Attention zealots and haters: 00100 00100
4. Re:Backwards compatibility by Peaker · 2007-05-05 11:39 · Score: 1
  
  If you knew anything about what you're trying to talk about, you'd know that multi-threading is used for these kinds of situations, as well as in GUI programming. And not just "when SMP scalability is an issue". This has nothing to so with the Win32 API design, it just was tackling a very specific problem. It doesn't mean that the Win32 API "requires threading", or that MS's engineers are incompetent, and that they used an additional thread unnecessarily here. Threads can be trivial, and this is I would say actually the most trivial case of their use. It's to their credit that they involved threads here (and might actually have been the only way), and it's to your ignorance that you don't understand any of this and got everything wrong about it.
  
  Threads are indeed used in GUI's and other places. But they are used because the software engineers are incompetent. There are far simpler approaches than threading, but since they look more complicated on surface-level, the incompetent engineers use threads instead.
  The flaw was in doing the WaitForSingleObject() in the DLL's detach process function without specifying a timeout value. Even if you have no reason to think that the thread won't be there to signal you eventually, sometimes the unthinkable occurs.
  
  I admit I have not really dug deep into the flaw, but I dug deep enough to realize that threads were an unnecessary complication, and was not surprised to learn that their use was a factor in the problem.
5. Re:Backwards compatibility by Bill+Dog · 2007-05-05 15:25 · Score: 1
  
  Threading is used in GUI's so that redraws and responding to the user can still take place while it's processing the user's last command or commands. This is how "incompetent engineers" for the Win32 and Java platforms do it, at least. What pray tell are the "far simpler approaches"?
  
  And how do you write a program that hosts plug-in executable code, to check whether it will hang its host, without the "unnecessary complication" of another thread of execution, either in the program itself, or in another process, watching it?
  
  --
  Attention zealots and haters: 00100 00100
6. Re:Backwards compatibility by Peaker · 2007-05-05 22:37 · Score: 2, Interesting
  
  Threading is used in GUI's so that redraws and responding to the user can still take place while it's processing the user's last command or commands. This is how "incompetent engineers" for the Win32 and Java platforms do it, at least. What pray tell are the "far simpler approaches"?
  
  The far-simpler approach is to use asynchronous programming. Never use blocking API calls. All good API's always provide non-blocking interfaces.
  If long computations are required, split them up into short computations and run the short computations asynchronously from the reactor (event loop).
  And how do you write a program that hosts plug-in executable code, to check whether it will hang its host, without the "unnecessary complication" of another thread of execution, either in the program itself, or in another process, watching it?
  
  Firstly, a process is not a thread. It is much safer and cannot cause another process's exit to hang or overwrite its memory/etc. Secondly, I would explicitly declare the interface the plugin must adhere to, and verify that it does, rather than just trying IUknown and watch it for "hanging" via a timeout heuristic.
"Magic filename" by Peaker · 2007-05-05 02:17 · Score: 1

Its not magic, maybe, its a registry filename.

Microsoft, in its stupidity and/or attempt to complicate their system so that potential compatibility is more difficult, duplicated the functionality of the "file system" with the registry. That makes registry keys such as CLSID's filenames too. The grandparent was right in calling them magic file names.